Follow

Q&A: Silverline-Initated DDoS Test Attack

Description

The article outlines the frequently asked questions related to Silverline-Initiated DDoS Tests.

For Terms and Conditions, as well as the Procedure to schedule a test, refer to How To: Schedule Silverline-Initiated DDoS Test.

For customer-initiated tests see Q&A: What is F5 Silverline's Policy on Customer-Initiated Pen Test/Application Scan/DDoS/Load Test?

 

Environment

  • Silverline DDoS (Routed or Proxy)
    • Always On
    • Always Available

Questions and Answers

Q: What are the benefits of conducting a DDoS test?

A: The main goal of DDoS testing is to evaluate the resiliency of the Silverline solution and practice event response. Here is the list of additional benefits:

  • Demonstrable capability
  • Improve Operational Performance, i.e. validate the Real Time Incident Procedure
  • Optimize configuration of your Silverline DDoS protection
  • Derive full value of Silverline infrastructure and services
  • Confirm technical controls are in place
  • Validate SLA’s, such as response time
  • Keep up to date with emerging threats

 

Q: Why should I conduct a DDoS test for my organization?

A: DDoS test is recommended for any organization which is using a DDoS protection. It's strongly recommended especially to those Silverline customers who did not have a DDoS attack for over 12 months.

 

Q: How will Silverline ensure that  DDoS testing will be done safely?

A: Silverline will take the following precautions to ensure safety:

  1. Ensuring authorizations are granted for non-Silverline owned IP addresses.
  2. Slowly ramping up traffic levels from very low levels. 
  3. Ramp-ups are done when client says to increase, not automatically or on a timer. People are always in full control of traffic levels.
  4. If, at any point during the test issues are observed, the customer should inform the SOC immediately so the attack can be ceased.

Q: What are the best practices based on Silverline's experience with tests for other customers?  

A: Silverline recommends that you take following steps to ensure your test is a success:

1. Routing through Silverline MUST be verified/tested prior to the tests. We have had a few scheduled tests that the customer has configuration errors (things that should’ve been fixed on their side) that prevent us from completing the test successfully. It's now a necessary requirement before the test. Please review the related article:

Testing DDoS Services: Is there a mechanism to test moving Routed traffic over? Can we schedule that for a particular maintenance window?

2. Conduct a tabletop exercise (TTX) prior to the DDoS test. TTX is a simulated, interactive exercise that tests an organization’s emergency response procedures. In tabletop exercises, key personnel with emergency management roles and responsibilities gather together to discuss various simulated emergency situations.

3. As part of the TTX ensure to review and to update your Real Time Incident Procedure (RTIP) on the Silverline portal. Here's How to Set Up Real-Time Incident Procedures (RTIP) for DDoS Attacks.

 

Related Content

 

Was this article helpful?
0 out of 0 found this helpful
Have more questions? Submit a request